- Issued:
- 2009-02-06
- Updated:
- 2009-02-06
RHBA-2009:0268 - Bug Fix Advisory
Synopsis
nss_ldap bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated nss_ldap package that fixes a bug is now available.
Description
The nss_ldap package contains the nss_ldap and pam_ldap modules. The
nss_ldap module is a plug-in which allows applications to retrieve
information about users and groups from a directory server. The pam_ldap
module allows PAM-aware applications to use a directory server to verify
user passwords.
This updated package provides the following bug fix:
- the approach used by the nss_ldap module to parse group memberships led
to heap corruption and a segmentation fault when resolving group membership
information for a user in a nested group (that is, if groups to which the
user belonged themselves belonged to other groups). This update backports
improved parsing code that allows nss_ldap to handle nested groups
successfully.
Users of nss_ldap are advised to upgrade to this updated package, which
resolves this issue.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.7 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.7 ia64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.7 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.7 s390x
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.7 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
- Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.7 ppc
Fixes
- BZ - 481745 - [RHEL4] CRM 1815690 nss_ldap causing segfaults wtih large nested groups
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 4
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| x86_64 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.x86_64.rpm | SHA-256: 21e23ff5af53f4ebae27043d983d8c1208eea3150486e6b2d695a4972a254648 |
| nss_ldap-253-5.el4_7.1.x86_64.rpm | SHA-256: 21e23ff5af53f4ebae27043d983d8c1208eea3150486e6b2d695a4972a254648 |
| ia64 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.ia64.rpm | SHA-256: 3239a6b2dce15e29e885c85ec534e79dead9410d0faa3d9819a4cd5792e25196 |
| nss_ldap-253-5.el4_7.1.ia64.rpm | SHA-256: 3239a6b2dce15e29e885c85ec534e79dead9410d0faa3d9819a4cd5792e25196 |
| i386 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.7
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| x86_64 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.x86_64.rpm | SHA-256: 21e23ff5af53f4ebae27043d983d8c1208eea3150486e6b2d695a4972a254648 |
| nss_ldap-253-5.el4_7.1.x86_64.rpm | SHA-256: 21e23ff5af53f4ebae27043d983d8c1208eea3150486e6b2d695a4972a254648 |
| ia64 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.ia64.rpm | SHA-256: 3239a6b2dce15e29e885c85ec534e79dead9410d0faa3d9819a4cd5792e25196 |
| nss_ldap-253-5.el4_7.1.ia64.rpm | SHA-256: 3239a6b2dce15e29e885c85ec534e79dead9410d0faa3d9819a4cd5792e25196 |
| i386 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
Red Hat Enterprise Linux Workstation 4
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| x86_64 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.x86_64.rpm | SHA-256: 21e23ff5af53f4ebae27043d983d8c1208eea3150486e6b2d695a4972a254648 |
| ia64 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.ia64.rpm | SHA-256: 3239a6b2dce15e29e885c85ec534e79dead9410d0faa3d9819a4cd5792e25196 |
| i386 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
Red Hat Enterprise Linux Desktop 4
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| x86_64 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
| nss_ldap-253-5.el4_7.1.x86_64.rpm | SHA-256: 21e23ff5af53f4ebae27043d983d8c1208eea3150486e6b2d695a4972a254648 |
| i386 | |
| nss_ldap-253-5.el4_7.1.i386.rpm | SHA-256: 9c6306d997aeab91df96207ecf139ebb8c36582b2e094da5659d5e907baaedf4 |
Red Hat Enterprise Linux for IBM z Systems 4
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| s390x | |
| nss_ldap-253-5.el4_7.1.s390.rpm | SHA-256: 7650e865288ce3df28ffa0bd8d2f07f28b67ff9d262bbdbdaf438cea84844691 |
| nss_ldap-253-5.el4_7.1.s390x.rpm | SHA-256: a775100978c1f5417594ff28eeff2a01e8c37e337e2a52411ccd12fb0b082e5a |
| s390 | |
| nss_ldap-253-5.el4_7.1.s390.rpm | SHA-256: 7650e865288ce3df28ffa0bd8d2f07f28b67ff9d262bbdbdaf438cea84844691 |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.7
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| s390x | |
| nss_ldap-253-5.el4_7.1.s390.rpm | SHA-256: 7650e865288ce3df28ffa0bd8d2f07f28b67ff9d262bbdbdaf438cea84844691 |
| nss_ldap-253-5.el4_7.1.s390x.rpm | SHA-256: a775100978c1f5417594ff28eeff2a01e8c37e337e2a52411ccd12fb0b082e5a |
| s390 | |
| nss_ldap-253-5.el4_7.1.s390.rpm | SHA-256: 7650e865288ce3df28ffa0bd8d2f07f28b67ff9d262bbdbdaf438cea84844691 |
Red Hat Enterprise Linux for Power, big endian 4
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| ppc | |
| nss_ldap-253-5.el4_7.1.ppc.rpm | SHA-256: 6f061773bf5621d88205f34078d9d1ed381c7461712d8762c2d7d9a6e0e52146 |
| nss_ldap-253-5.el4_7.1.ppc64.rpm | SHA-256: 649cb9b54177859bf9684fd6d74c8adf4378a1ad9d1253bb211fa639ea26f9e1 |
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.7
| SRPM | |
|---|---|
| nss_ldap-253-5.el4_7.1.src.rpm | SHA-256: ec00992010cf2beb97e5e453928f03cc0b7df0c4b4a2ec6829e62ebc2b5ab30b |
| ppc | |
| nss_ldap-253-5.el4_7.1.ppc.rpm | SHA-256: 6f061773bf5621d88205f34078d9d1ed381c7461712d8762c2d7d9a6e0e52146 |
| nss_ldap-253-5.el4_7.1.ppc64.rpm | SHA-256: 649cb9b54177859bf9684fd6d74c8adf4378a1ad9d1253bb211fa639ea26f9e1 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
